Inform Security Off-Operations

Title: Inform Security Off-Operations DSPF0052

State Role Title: Info Technology Specialist III

Hiring Range: Negotiable and commensurate with experience

Pay Band: 6

Agency: Department of State Police

Location: North Chesterfield, Virginia

Agency Website: vsp.virginia.gov

Recruitment Type: General Public - G

Job Duties

About the Position:

The Virginia State Police (VSP) is seeking to hire an Information Security Officer – Operations in our Information Security Office at our Administrative Headquarters in North Chesterfield, Virginia. The successful candidate will manage information security architecture and security posture that provides protection of the Agency’s information assets; perform infrastructure and risk management on the security architecture and systems; implement information security architecture strategies, objectives, and security controls and infrastructure; develop, review, and update infrastructure and security architecture procedures; perform System and Event Management (SIEM) and incident response activities; develop, configure, and deploy SIEM tool for incident response, threat management, and alerting of incident and suspicious activities; ensure all systems off-load audit records to a different system every 30 days; reviews and analyze daily information system audit records and events using alerts and dashboards; document and review rationale for Agency-specific application auditable events that are adequate to support after-the-fact investigations of security incidents on annual basis; report infrastructure related security incidents to Virginia Information Technology Agency (VITA) for investigation; perform security-related configuration and change management activities; identify and review the Agency’s minimum hardware configurations on an annual basis; review and revise all VSP and VITA security configuration settings to ensure compliance with security requirements using Center for Internet Security (CIS) Security Suite/IT Security hardening guidelines on annual basis and/or environmental changes; coordinate a review/approve active functions, ports, protocols, and services for applicability to the Agency’s business requirements on annual basis or as environmental changes; and participate in continuity planning activities.

About the Agency:

We are seeking to expand our diverse team of change makers and innovators. As a member of the VSP family, you would make a difference by serving every city, county, town, resident, and visitor of the Commonwealth through supporting our vast public safety mission. Challenge yourself to make a difference today by applying for a career with VSP!

VSP embraces inclusion and diversity in our workforce and in the protection of all people. We embrace our tradition of professionalism and excellence, and we are excited for our future as we continue our journey to become a best-in-class state government agency. We are firmly committed to our family-like culture and are seeking to expand our team.

Minimum Qualifications

•Considerable knowledge of the Commonwealth security standards including but not limited to Commonwealth of Virginia SEC530; of Information Security (IS) tools, technologies, and techniques; of firewalls, intrusion detection, end-point protection, data networking, end user computing, virtualization, Microsoft technologies, and private/public cloud computing; and of conducting infrastructure and risk management on the security architecture and systems.
•Skill in operating computers and using Microsoft Office applications; and in developing and delivering presentations that breakdown complex technical terms into everyday language.
•Demonstrated ability to perform Security Information and Event Management (SIEM) and Incident Response activities; to perform security-related configuration and change management activities; to work with broad cross-section of personnel including all levels of management and external entities such as agencies and service providers to explain and enforce security measures; to collaborate and disseminate security related information; to provide input and security direction for future designs, information security capabilities, and strategic technology alternatives; and to communicate effectively in English orally and in writing.
•Significant experience in performing reviews of proposed changes and projects as it pertains to the alignment of applicable State and/or federal security standards/regulations; in the development, utilizing, and presentation of information security architecture policies, standards, and procedures; and in two (2) or more: cloud-based technologies, local area networks (LAN)/Wide Area Network (WAN) networking, Systems Administration (Windows/Unix based platforms), firewalls, Intrusion Detection Systems (IDS)/Intrusion Protection Systems (IPS) design and implementation, computer forensic techniques, databases, web and mail services.
•General experience in industry or State information security and Information Technology (IT) risk management with a focus on security, performance, and reliability; with Information Security Frameworks like NIST-800 series and Cybersecurity Framework, Center for Internet Security (CIS) Benchmarks, Internal Standards Organization (ISO)2700 series, and Criminal Justice Information Services (CJIS); and in monitoring IT environments for compliance with information security architecture policies and standards.
•High School Diploma or GED equivalent.

Additional Considerations

•Certification in information security, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) preferred.

Special Instructions

You will be provided a confirmation of receipt when your application and/or résumé is submitted successfully. Please refer to “Your Application” in your account to check the status of your application for this position.

Elements of the selection process include the screening of application(s); the interviewing of qualified candidate(s), to include pre-employment testing, a presentation and/or a work sample, if applicable; salary negotiation(s) if applicable; a background investigation; and a medical evaluation if applicable. The anticipated duration of the pre-employment process is determined by the successful completion of the above items.

Applications, cover letters and/or resumes shall only be accepted on-line through the PageUp recruitment management system at https://jobs.virginia.gov and must be received by 11:55 P. M. on July 22, 2025. Please limit resumes to four pages and cover letters to one page. Any additional attachments received in excess of this will not be considered.

PageUp provides a confirmation of receipt of your application, resume and/or cover letter submitted successfully. Please refer to your PageUp account to check the status of your application for this position. For questions, please contact the Talent Acquisition & Employee Relations Section of the Human Resources Division at civilianemployment@vsp.virginia.gov.

The Department of State Police is an Equal Opportunity Employer. Our policy is to extend employment opportunities to qualified individuals on an equal basis regardless of an individual’s race (or traits historically associated with race including hair texture, hair type, and protective hairstyles such as braids, locks, and twists); sex; color; national origin; religion; sexual orientation; gender identity or expression; age; veteran status; political affiliation; disability; genetic information; and pregnancy, childbirth, or related medical conditions.

REASONABLE ACCOMMODATIONS ARE AVAILABLE UPON REQUEST

(V)alor (S)ervice (P)ride

In support of the Commonwealth’s commitment to inclusion, we are encouraging individuals with disabilities to apply through the Commonwealth Alternative Hiring Process. To be considered for this opportunity, applicants will need to provide their AHP Letter (formerly COD) provided by the Department for Aging & Rehabilitative Services (DARS), or the Department for the Blind & Vision Impaired (DBVI). Service-Connected Veterans are encouraged to answer Veteran status questions and submit their disability documentation, if applicable, to DARS/DBVI to get their AHP Letter. Requesting an AHP Letter can be found at AHP Letter or by calling DARS at 800-552-5019.

Note: Applicants who received a Certificate of Disability from DARS or DBVI dated between April 1, 2022- February 29, 2024, can still use that COD as applicable documentation for the Alternative Hiring Process.